[Skiboot] [PATCH v1 0/5] New HBRT interfaces
stewart at linux.vnet.ibm.com
Fri Aug 14 10:00:32 AEST 2015
Daniel M Crowell <dcrowell at us.ibm.com> writes:
> That compile flag is all fine and good to say, but remember who we're
> dealing with here. Who is going to be building the 'special' versions of
> this interface for thee folks that are using it. It already takes a bunch
> of extra people to get the specific distro installed with all of the
> appropriate patches, etc. Are you going to maintain packages with the
> debug version? There are already a thousand native Linux commands that
> one can ruin their system with, how is this different? This requires sudo
> so the admin should know what they are doing and not run random commands.
> Do we really need to protect users from themselves? 99% of users won't
> even know this application exists...
Sounds like an --enable-danger-mode would be the best bet.
Along with printing out a giant warning.
we were also discussing the idea of tainting the kernel if you run any
of these, and maybe introducing similar idea into skiboot.
More information about the Skiboot